$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/B84D6D3AF81811EFACB5925BC4F9AE02.roa File: B84D6D3AF81811EFACB5925BC4F9AE02.roa (raw, json) Hash identifier: OXnTHrIuW8lqh4Zru5Af4wCTMKEnL5QDhv8/K+4cKxI= Subject key identifier: 68:6A:07:6B:4B:FF:78:33:42:79:A8:2A:17:6D:88:A3:25:CF:49:C4 Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 9D Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/B84D6D3AF81811EFACB5925BC4F9AE02.roa Signing time: Mon 03 Mar 2025 10:17:33 +0000 ROA not before: Mon 03 Mar 2025 10:17:33 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 212238 IP address blocks: 103.108.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560 Validity Not Before: Mar 3 10:17:33 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67c581bc-e928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:db:f5:96:91:bd:a0:35:ee:25:41:ff:a8: 93:38:e3:52:7d:5e:0f:9e:c2:68:4f:87:56:de:17: 5a:32:4a:e7:d4:15:8a:67:5b:08:97:7b:42:d8:4a: 6a:3c:30:78:a6:18:d2:42:ea:51:40:c9:ca:57:b1: d7:e9:5c:f5:ed:3b:a6:e5:ad:c4:59:76:29:73:39: 63:2e:fa:e7:bd:93:0a:0e:48:1a:e5:46:87:0e:0f: fa:16:6e:4d:51:80:2f:2f:f4:a5:03:cb:83:b0:e4: a5:e4:62:76:79:e9:2f:d3:0f:74:e1:54:ce:77:cb: 6f:30:c9:2f:6c:0b:53:43:8d:a8:8c:b8:53:e4:cf: 67:8a:d1:5f:c3:66:13:c0:a1:e6:cc:42:15:82:e9: 08:cd:e7:d7:b8:3a:79:8f:e0:9c:b1:63:8d:24:d8: 91:06:d0:49:6c:2d:a4:78:9b:65:93:5a:da:34:48: 4c:59:54:2a:c3:50:0c:7d:a4:f9:5e:c0:56:2c:07: bb:c7:85:95:61:de:82:6c:8c:2a:77:0f:47:6b:f9: d1:28:d7:74:c6:7f:75:fe:7a:bc:90:8b:21:fa:3d: ed:04:f5:11:9c:08:d1:c5:ee:22:68:1e:54:07:f7: d5:cc:78:d9:c1:08:c0:b0:f8:b7:a2:a0:8f:b7:63: 4c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6A:07:6B:4B:FF:78:33:42:79:A8:2A:17:6D:88:A3:25:CF:49:C4 X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/B84D6D3AF81811EFACB5925BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.174.0/24 Signature Algorithm: sha256WithRSAEncryption a3:19:e7:e9:0e:4c:e7:88:de:53:b3:04:14:d2:53:34:e6:e1: 48:50:fe:a6:8a:cf:21:00:6d:e6:73:a2:fa:38:e5:1c:e8:12: c7:25:23:89:91:69:0a:6b:41:fd:9a:2e:0f:37:3e:20:c9:54: 67:78:e7:66:05:2c:d1:ba:d2:7a:c7:98:1d:9a:84:81:c1:1f: 9a:fc:88:33:e4:de:a7:1e:cd:ad:8a:0c:a1:58:05:43:af:a1: 75:4d:b4:90:81:d3:61:db:fc:4f:62:b7:f5:48:64:b0:78:bd: 0a:0a:85:1d:81:2f:57:68:a9:3e:17:3c:e0:22:ef:52:12:81: 16:bd:83:f3:29:45:80:3f:61:09:46:24:e2:6a:71:85:c1:6d: 34:c4:79:d3:ff:a0:38:1f:47:61:b5:18:80:1b:23:44:41:96: 47:3d:48:cb:d2:61:73:4d:82:18:07:22:03:d9:35:61:65:88: 3e:22:a5:1b:2f:c1:11:02:5d:8f:25:d8:1e:a8:13:79:d0:ca: 8e:cb:ba:27:c3:d5:a1:6f:ad:a7:df:27:50:dd:0a:bd:6c:0c: 2d:55:38:41:09:33:0f:b1:e4:5a:bd:fe:a4:58:0d:99:8e:45: 1e:df:73:66:09:71:e1:f0:a5:ab:9f:b8:09:6e:c3:9c:ce:4b: ee:4d:17:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NjAxMTAvBgNVBAUTKEUzOEVCM0Y1QTUxMDdFMzBGMENBNzFEREVBNzVCMTcw RDBCMDMyNTYwHhcNMjUwMzAzMTAxNzMzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1ODFiYy1lOTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrjb9ZaRvaA17iVB/6iTOONSfV4PnsJoT4dW3hdaMkrn1BWKZ1sIl3tC2Epq PDB4phjSQupRQMnKV7HX6Vz17Tum5a3EWXYpczljLvrnvZMKDkga5UaHDg/6Fm5N UYAvL/SlA8uDsOSl5GJ2eekv0w904VTOd8tvMMkvbAtTQ42ojLhT5M9nitFfw2YT wKHmzEIVgukIzefXuDp5j+CcsWONJNiRBtBJbC2keJtlk1raNEhMWVQqw1AMfaT5 XsBWLAe7x4WVYd6CbIwqdw9Ha/nRKNd0xn91/nq8kIsh+j3tBPURnAjRxe4iaB5U B/fVzHjZwQjAsPi3oqCPt2NMnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGhqB2tL /3gzQnmoKhdtiKMlz0nEMB8GA1UdIwQYMBaAFOOOs/WlEH4w8Mpx3ep1sXDQsDJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU2MC80QzNENkJDMDIx NkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZqRHd5bkhkNm5XeGNOQ3dN bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01sWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NjAvNEMzRDZCQzAyMTZGMTFFRkFGNDVFQTJEQzRGOUFFMDIvQjg0RDZEM0FG ODE4MTFFRkFDQjU5MjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbK4wDQYJKoZIhvcNAQELBQADggEBAKMZ5+kOTOeI3lOz BBTSUzTm4UhQ/qaKzyEAbeZzovo45RzoEsclI4mRaQprQf2aLg83PiDJVGd452YF LNG60nrHmB2ahIHBH5r8iDPk3qceza2KDKFYBUOvoXVNtJCB02Hb/E9it/VIZLB4 vQoKhR2BL1doqT4XPOAi71ISgRa9g/MpRYA/YQlGJOJqcYXBbTTEedP/oDgfR2G1 GIAbI0RBlkc9SMvSYXNNghgHIgPZNWFliD4ipRsvwRECXY8l2B6oE3nQyo7LuifD 1aFvraffJ1DdCr1sDC1VOEEJMw+x5Fq9/qRYDZmORR7fc2YJceHwpaufuAluw5zO S+5NFxw= -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:27 2025 by rpki-client